Kusihlungi sephakethe le-ipfw ubungozi obubili kukhodi yokuhlaziya yezinketho ze-TCP, okubangelwa ukuqinisekiswa kwedatha okungalungile kumaphakethe enethiwekhi acutshunguliwe. Ukuba sengozini kokuqala (CVE-2019-5614) lapho kucutshungulwa amaphakethe e-TCP ngendlela ethile kungaholela ekufinyeleleni kwimemori ngaphandle kwe-buf buffer eyabelwe, kanti okwesibili (CVE-2019-15874) kungaholela ekufinyeleleni ezindaweni zenkumbulo esezivele zikhululiwe ( sebenzisa-ngemuva-mahhala).
Ukuhlaziywa kokufaneleka kwezinkinga ezikhonjiwe zokuxhashazwa okukwazi ukucupha ukusetshenziswa kwekhodi yomhlaseli akuzange kwenziwe, kodwa kungenzeka ukuthi ubungozi angeke bukhawulelwe ekubangeleni ukuphahlazeka kwe-kernel. Izinkinga zalungiswa kuzibuyekezo ze-FreeBSD 11.3-RELEASE-p8 kanye ne-12.1-RELEASE-p4 (ukulungiswa kwenziwe emagatsheni azinzile emuva ngo-December wonyaka odlule, kodwa iqiniso lokuthi lokhu kulungiswa kuhlobene nokuqeda ubungozi kwaziwa manje kuphela) .
Source: opennet.ru